search
githubEdit

Collect Logs with OpenTelemetry

A guide on how to collect logs using OpenTelemetry on Linux from installation to ingestion

hashtag
Install otelcol-contrib

circle-info

At the time of writing, the latest version of otelcol-contrib is v0.121.0

See releasesarrow-up-right for later versions

For DEB-based:

wget https://github.com/open-telemetry/opentelemetry-collector-releases/releases/download/v0.120.0/otelcol-contrib_0.120.0_linux_amd64.deb
dpkg -i otelcol-contrib_0.121.0_linux_amd64.deb

For RHEL-based:

wget https://github.com/open-telemetry/opentelemetry-collector-releases/releases/download/v0.121.0/otelcol-contrib_0.121.0_linux_amd64.rpm
rpm -ivh otelcol-contrib_0.121.0_linux_amd64.rpm

hashtag
Configure Collector

Edit /etc/otelcol-contrib/config.yaml and replace the content with the below

receivers:
  filelog:
    include: ["<your_log_file_path>"]
    multiline:
      line_start_pattern: '^\d{4}-\d{2}-\d{2} \d{2}:\d{2}:\d{2},\d{3}'

processors: 
  batch:
    timeout: 5s

exporters:
  debug:
    verbosity: detailed   
  otlphttp:
    logs_endpoint: https://<your_domain>/v1/json_batch/otlplogs?namespace=<namespace>&application=<application>
    encoding: json
    compression: gzip
    headers:
      Authorization: "Bearer <your_token>"
    tls:
      insecure: false
      insecure_skip_verify: true

service:
  pipelines:
    logs:
      receivers: [filelog]
      processors: [batch]
      exporters: [debug, otlphttp]

Replace the following values:

  • <your_log_file_path>

    • Physical path to your log file

  • <your_domain>

    • Hostname of your Apica environment (example.apica.io)

  • <your_token>

  • <namespace>

    • A name for high-level grouping of logs, isolating different projects, environments, or teams.

  • <application>

    • A name for logs generated by a specific service or process

  • line_start_pattern

    • The above example uses a regex to match on the timestamp of a log entry to capture the entire entry. This needs to be adjusted to match the beginning of your log structure. See below example of entries that matches this pattern.

hashtag
Validate and apply

When you're done with your edits, execute the below command to validate the config is valid (it should return nothing if everything is in order)

Restart OTel to apply your changes

hashtag
Ascent view

Assuming everything has been done correctly, your logs will start to appear in Explore > Logs & Insight on your Ascent environment. They will show up based on the namespace and application names that you set in your config.yaml file.

PreviousCollect Logs with PythonNextCollect Logs with Rsyslog

Last updated

Was this helpful?